Cybercriminals Hijack Mailing Lists to Distribute Fake Cryptocurrency Seed Phrases

Monday 7th of April 2025 13:35:54

Malware Campaign Spreads Fake Wallet Seed Phrases Through Hacked Mailing Lists

A sophisticated malware campaign has been uncovered, targeting cryptocurrency users by spreading fake wallet seed phrases through hacked mailing lists.

The campaign, which has been active since at least October, uses a combination of social engineering and malware to trick victims into installing a fake wallet application that generates fake seed phrases.

According to a report by cybersecurity firm, Check Point, the campaign has already affected thousands of users worldwide, with the majority of victims located in the United States, China, and Japan.

The malware, known as "SeedForce," uses a phishing email to trick victims into downloading a fake wallet application, which appears to be a legitimate cryptocurrency wallet. The application then generates a fake seed phrase, which is designed to look like a legitimate wallet seed phrase.

The fake seed phrase is then used to create a fake wallet, which is designed to look like a legitimate cryptocurrency wallet. The malware then attempts to convince the victim to transfer funds to the fake wallet, resulting in the loss of cryptocurrency.

Check Point researchers believe that the campaign is highly sophisticated and is likely to be the work of a professional group of cybercriminals.

"This is a highly sophisticated campaign that uses a combination of social engineering and malware to trick victims into installing a fake wallet application," said Omer Shindler, a Check Point researcher. "The fake seed phrase is designed to look like a legitimate wallet seed phrase, making it difficult for victims to detect the fraud."

The campaign is particularly dangerous because it targets cryptocurrency users who are often not as cautious as they should be when it comes to online security.

"Many cryptocurrency users are not aware of the risks associated with fake wallet seed phrases, and may not take the necessary precautions to protect themselves," said Shindler. "This campaign is a wake-up call for all cryptocurrency users to be more vigilant when it comes to online security."

Check Point is urging all cryptocurrency users to be cautious when receiving unsolicited emails or messages that ask them to install a fake wallet application. The company is also advising users to use strong antivirus software and to regularly back up their cryptocurrency wallets.

In addition, Check Point is working with cryptocurrency exchanges and other organizations to help detect and prevent the spread of the malware.

The campaign is a reminder of the importance of online security for all cryptocurrency users, and the need to be vigilant when it comes to protecting their digital assets.